Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    879b52a48f0b373c91925434204861cf0b65f249c7e66c2e29ae282ad1a72fc4

  • Size

    3.1MB

  • Sample

    240515-mcfajacg7s

  • MD5

    dfa06acfc5137205e01c18ab27c0e328

  • SHA1

    b527181ba065c9a5da8227d00b464329cfffb7cd

  • SHA256

    879b52a48f0b373c91925434204861cf0b65f249c7e66c2e29ae282ad1a72fc4

  • SHA512

    3cb2554f38fc07f8d23686487de693fb778c002dd03ee6ca748db40b9c6a6436d1f5e6be6f04b1402b6570ec41a49b8a3c4791d83f11f64ca2192f46b0bd30ae

  • SSDEEP

    49152:jC9E1d32FoQQ3K9XqYbdjF3m+V8Ou907F2nd7pNL1Ut3CwA2B9GvDQlN1/:jlL3Yod32Dmg/52d/G3C37Y1/

Score
10/10

Malware Config

Extracted

Family

risepro

C2

147.45.47.126:58709

Targets

    • Target

      879b52a48f0b373c91925434204861cf0b65f249c7e66c2e29ae282ad1a72fc4

    • Size

      3.1MB

    • MD5

      dfa06acfc5137205e01c18ab27c0e328

    • SHA1

      b527181ba065c9a5da8227d00b464329cfffb7cd

    • SHA256

      879b52a48f0b373c91925434204861cf0b65f249c7e66c2e29ae282ad1a72fc4

    • SHA512

      3cb2554f38fc07f8d23686487de693fb778c002dd03ee6ca748db40b9c6a6436d1f5e6be6f04b1402b6570ec41a49b8a3c4791d83f11f64ca2192f46b0bd30ae

    • SSDEEP

      49152:jC9E1d32FoQQ3K9XqYbdjF3m+V8Ou907F2nd7pNL1Ut3CwA2B9GvDQlN1/:jlL3Yod32Dmg/52d/G3C37Y1/

    Score
    10/10
    • RisePro

      RisePro stealer is an infostealer distributed by PrivateLoader.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks